Lucene search
China National Vulnerability DatabaseCNVD-2021-102787HistoryDec 26, 2021 - 12:00 a.m.
WordPress Logo Carousel plugin licensing issues vulnerability
2021-12-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
logo carousel
authorization
vulnerability
security
php
mysql
authentication
EPSS
0.001
Percentile
32.8%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress Logo Carousel plugin is vulnerable to authorization issues in versions prior to 3.4.2. The vulnerability stems from a lack of authentication measures or insufficient authentication strength in the network system or product. An attacker could exploit the vulnerability to copy and view arbitrary private posts from other users.
Related
wpvulndb
wpvulndb
Logo Carousel < 3.4.2 - Unauthorised Private Post Access
2021-11-22 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Logo Carousel < 3.4.2 - Unauthorised Private Post Access
2021-11-22 00:00:00
nvd
nvd
CVE-2021-24739
2021-12-21 09:15:06
cve
cve
CVE-2021-24739
2021-12-21 09:15:06
cvelist
cvelist
CVE-2021-24739 Logo Carousel < 3.4.2 - Unauthorised Private Post Access
2021-12-21 08:45:28
prion
prion
Design/Logic Flaw
2021-12-21 09:15:00